Tech & Society

No love lost: Zomato business unaffected by May data breach

India born Zomato announced they reached three million orders in a single month, still going strong months after suffering from a massive data leak in May.

Though a restaurant platform designed to consolidate restaurant reviews and facilitate online ordering didn’t sound like a prime target for a hack, they confirmed the breach on their blog on May 18. Zomato’s customer databases were hacked and the perpetrator accessed emails, names and hashed passwords for 17 million accounts. Though luckily payment information was not compromised.

Reportedly, the company was able to negotiate with the unnamed hacker to prevent misuse of the information, which was going to be sold on a dark web marketplace. The hacker was said to embrace ethical hacking standards and accepted to take down and destroy the data in exchange for Zomato’s sponsorship of a bug bounty program on Hackerone.

The breach involved at least 6.6 million email and password hash combinations. Password hashes are vulnerable to brute-force attacks that can potentially reveal the passwords. When considering that people tend to use the same password across many online services, data breaches can be devastating for affected users.

While Zomato has taken steps to fix the vulnerability that enabled the hacker to access their system, the problem has deeper roots. “Password-secured security solutions have quickly become outdated, leaving millions of businesses vulnerable to breaches”, said Leonardo Cooper, CEO of cyber security company Vault One. As new no-password technologies such as blockchain become the standard, security is expected to increase in both business and private environments.

Nonetheless, Zomato continues to attract attention in the ultra competitive foodtech sector. Since last year it has made great improvement toward profitability as it is getting more visitors and orders, decreasing cash burning, and surviving many other startups—all while staying away from new funding.

Back in May 2016, HSBC Securities & Capital Markets cut Zomato’s valuation by 50% in light of non-profitable operations in all 23 countries it operates in; today, Zomato makes a profit in 11 of them.

Even the most loved startups face setbacks they must overcome, and Zomato is no exception. While the shadow of a data leak remains a dark spot on their history, their sustained deliveries and will to survive show that users will forgive your sins—as long as you have a great product.

 

Daniel Sanchez

Hailing from the Caribbean coast of Colombia, Daniel is a writer and freelance translator with a background in biology. When not word-smithing, you will probably find him chasing frogs somewhere around the tropical belt.

Recent Posts

AI Launches: Cybersecurity, AI Agents, product specs, business operating system, automobile, consumer & MSME lending, cloud, data streaming

The Tech Panda takes a look at recent launches in the superfast field of Artificial…

21 hours ago

As India’s tech sector on track to surpass $300 billion, CEO of Ness shares insights into AI’s important role 

The tech sector in India has been going from strength to strength in recent years.…

1 day ago

Unknown & uncontrolled machine identities within organizations leading to emergence of new identity security challenges

Experts are saying that organizations are inadvertently creating a new identity-centric attack surface through growing…

1 day ago

Outbound & inbound: India attracts businesses from US & Singapore while expanding to UAE, Europe & Philippines

The Tech Panda takes a look at how India has been attracting foreign businesses from…

2 days ago

The death of paper records: Will AI-driven EHRs eliminate medical errors?

Patient records have long been a collection of handwritten notes, prescription slips, and test results,…

2 weeks ago

The future of contactless hospitality: Balancing convenience with personalization

The fast pace development of the hospitality industry will result in contactless technology adoption, where…

2 weeks ago